Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e31332e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e31332e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: Nb4ixwgEw6wpmM7r33b1/DYohHzVkKEShzT28DQ3ECk=
Subject key identifier: 4D:F8:43:EF:5F:01:06:F4:B8:2F:8F:BB:26:D4:97:B2:FE:F2:60:92
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 69CDF439F73C3091DC97CD18BB09A006B7A33D31
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e31332e302f32342d3234203d3e203234323033.roa
Signing time: Wed 13 Apr 2022 08:00:03 +0000
ROA not before: Wed 13 Apr 2022 07:55:03 +0000
ROA not after: Wed 12 Apr 2023 08:00:03 +0000
asID: 24203
IP address blocks: 140.213.13.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:cd:f4:39:f7:3c:30:91:dc:97:cd:18:bb:09:a0:06:b7:a3:3d:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 13 07:55:03 2022 GMT
Not After : Apr 12 08:00:03 2023 GMT
Subject: CN=4DF843EF5F0106F4B82F8FBB26D497B2FEF26092
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:1b:7e:48:9b:d4:68:13:10:e4:c3:c9:48:47:
8e:fb:8b:f8:ee:ca:e8:58:66:e4:9a:95:0d:cc:a0:
0d:a3:b6:34:16:1a:b4:a9:44:67:e3:e6:92:ad:fd:
4b:c3:35:03:fc:f1:35:fb:e3:f8:b4:24:82:07:5d:
e6:03:32:b5:63:0f:b4:b1:85:37:9b:ed:6a:e3:9b:
f7:cc:23:7c:b1:6f:ff:45:0d:db:7b:83:55:34:43:
14:dd:03:1e:40:b2:d4:88:b2:35:c3:c3:da:c7:82:
e5:4b:5c:87:63:63:8f:27:a3:91:12:df:08:49:85:
76:6d:89:24:84:71:c4:d5:a1:e0:66:4b:3f:2a:cf:
f9:79:aa:37:ce:ab:b5:a1:9e:80:17:84:c4:8c:bb:
3f:01:51:90:88:d3:1c:ae:de:d5:5f:32:f9:7f:fd:
71:de:73:e4:97:ef:e7:6e:2f:3c:3f:f9:6b:a4:97:
6d:f5:a0:1e:96:1e:cc:6c:16:32:0d:10:d2:ec:f1:
36:e6:05:f8:eb:d7:f2:16:d7:1d:54:5a:db:f2:6f:
33:c6:d0:44:b9:fa:6b:5d:a7:72:cd:49:60:14:45:
85:35:77:56:67:49:cd:94:0e:69:6a:d7:c1:54:db:
10:8e:25:d2:1e:db:29:f2:13:c0:9b:70:cb:77:9c:
4f:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:F8:43:EF:5F:01:06:F4:B8:2F:8F:BB:26:D4:97:B2:FE:F2:60:92
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e31332e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.13.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:13:d7:d8:54:b1:df:26:32:80:72:c7:d4:21:ca:c9:0c:d3:
f1:89:83:49:2f:79:d4:1a:36:34:fb:5b:1f:e1:c9:06:78:91:
d3:72:98:56:ad:90:3c:96:a3:80:f0:90:fd:64:aa:15:97:23:
45:73:8c:28:ad:ca:8a:9b:fe:38:55:66:b5:8c:a5:f1:ee:ba:
c8:cb:d9:2e:9c:8b:ab:9b:7d:df:e4:46:69:84:03:22:3f:8d:
af:77:ae:18:2e:75:f0:69:34:2c:f3:3b:07:32:3b:0c:d2:13:
f7:27:8f:e4:f0:23:07:b7:0f:ef:34:13:6f:44:a8:76:59:67:
a1:fa:53:b5:81:cd:a8:df:cd:41:38:cb:4b:b1:24:69:2c:af:
c1:e0:da:a3:78:97:4d:e0:bd:c1:7e:57:7a:74:47:63:fd:ef:
dd:86:9a:44:29:80:f7:b0:1f:e2:83:d9:a3:f2:0a:a9:f0:4c:
3c:de:aa:ad:39:a8:a0:4a:5a:a7:35:08:1f:f4:f8:3a:eb:5f:
96:81:44:30:b9:97:ff:24:6b:88:f6:55:fb:51:1a:c2:cc:27:
42:55:cb:58:a1:e3:36:69:aa:17:7f:c3:6d:34:5f:71:13:11:
8c:ba:98:f6:e4:58:41:8f:0e:f7:67:e8:87:10:8d:47:c2:c6:
8d:b2:68:35
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUac30Ofc8MJHcl80YuwmgBrejPTEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNG
QzY2MEExQjAeFw0yMjA0MTMwNzU1MDNaFw0yMzA0MTIwODAwMDNaMDMxMTAvBgNV
BAMTKDRERjg0M0VGNUYwMTA2RjRCODJGOEZCQjI2RDQ5N0IyRkVGMjYwOTIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvG35Im9RoExDkw8lIR477i/ju
yuhYZuSalQ3MoA2jtjQWGrSpRGfj5pKt/UvDNQP88TX74/i0JIIHXeYDMrVjD7Sx
hTeb7Wrjm/fMI3yxb/9FDdt7g1U0QxTdAx5AstSIsjXDw9rHguVLXIdjY48no5ES
3whJhXZtiSSEccTVoeBmSz8qz/l5qjfOq7WhnoAXhMSMuz8BUZCI0xyu3tVfMvl/
/XHec+SX7+duLzw/+Wukl231oB6WHsxsFjINENLs8TbmBfjr1/IW1x1UWtvybzPG
0ES5+mtdp3LNSWAURYU1d1ZnSc2UDmlq18FU2xCOJdIe2ynyE8CbcMt3nE+rAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUTfhD718BBvS4L4+7JtSXsv7yYJIwHwYDVR0j
BBgwFoAUELq3kH2VOg1f3rXCDJ8pvPxmChswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMS8xMEJBQjc5MDdE
OTUzQTBENUZERUI1QzIwQzlGMjlCQ0ZDNjYwQTFCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzEvMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNGQzY2
MEExQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8xLzMxMzQzMDJlMzIzMTMzMmUzMTMzMmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzIzNDMyMzAzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAIzVDTANBgkqhkiG
9w0BAQsFAAOCAQEAyBPX2FSx3yYygHLH1CHKyQzT8YmDSS951Bo2NPtbH+HJBniR
03KYVq2QPJajgPCQ/WSqFZcjRXOMKK3Kipv+OFVmtYyl8e66yMvZLpyLq5t93+RG
aYQDIj+Nr3euGC518Gk0LPM7BzI7DNIT9yeP5PAjB7cP7zQTb0SodllnofpTtYHN
qN/NQTjLS7EkaSyvweDao3iXTeC9wX5XenRHY/3v3YaaRCmA97Af4oPZo/IKqfBM
PN6qrTmooEpapzUIH/T4OutfloFEMLmX/yRriPZV+1EawswnQlXLWKHjNmmqF3/D
bTRfcRMRjLqY9uRYQY8O92fohxCNR8LGjbJoNQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:06 2024 by rpki-client on console-fra.rpki-client.org